Skip to content
/ zap-api-python Public

Client Spider Support#143

Closed
JohnnyIrvin wants to merge 4 commits intozaproxy:mainfrom
JohnnyIrvin:client-spider-support
Closed

Client Spider Support#143
JohnnyIrvin wants to merge 4 commits intozaproxy:mainfrom
JohnnyIrvin:client-spider-support

Conversation

@JohnnyIrvin
Copy link

@JohnnyIrvin JohnnyIrvin commented May 29, 2025 

#!/usr/bin/env python

from zapv2 import ZAPv2
import time


target = 'http://127.0.0.1' # Change to match the target URL you want to scan
apikey = 'changeme' # Change to match the API key set in ZAP, or use None if the API key is disabled


zap = ZAPv2(apikey=apikey)

print(f'Spidering target {target}')
scanid = zap.clientSpider.scan(url=target)

while (int(zap.clientSpider.status(scanid)) < 100):
    print(f"Spider progress %: {zap.clientSpider.status(scanid)}")
    time.sleep(2)
    
print('Spider completed')

Adds the client spider to the python api.

@psiinon
Copy link
Member

psiinon commented May 29, 2025
edited
Loading

Logo
Checkmarx One – Scan Summary & Detailsa4ececca-f38c-4a73-ab4a-13411bcf5c9c

Great job, no security vulnerabilities found in this Pull Request

@JohnnyIrvin JohnnyIrvin force-pushed the client-spider-support branch 2 times, most recently from 9e7970f to 7db890a Compare May 29, 2025 14:27
@JohnnyIrvin
Copy link
Author

JohnnyIrvin commented May 29, 2025

@psiinon fixed commit signatures. no way for me to rerun job.

@kingthorin
Copy link
Member

kingthorin commented May 29, 2025

You need to do all of them.
Or squash it and do just one.
https://github.com/zaproxy/zap-api-python/pull/143/checks?check_run_id=43121122608

@JohnnyIrvin
feat(spider): Adds client spider class.
62a955a 
Signed-off-by: Johnathan P. Irvin <me@3xpl0173d.dev>
@JohnnyIrvin
feat(zap): Adds ClientSpider to ZAPv2
fe766c8 
Signed-off-by: Johnathan P. Irvin <me@3xpl0173d.dev>
@JohnnyIrvin
docs(examples): Adds client spider example.
7d9d49d 
Signed-off-by: Johnathan P. Irvin <me@3xpl0173d.dev>
@JohnnyIrvin JohnnyIrvin force-pushed the client-spider-support branch from 7db890a to 7d9d49d Compare May 29, 2025 15:48
@JohnnyIrvin
Copy link
Author

JohnnyIrvin commented May 29, 2025

@kingthorin thank you for clarification.

should be fixed now.

any other changes required?

@JohnnyIrvin
Copy link
Author

JohnnyIrvin commented May 30, 2025

@kingthorin or @psiinon -- Any update? Looking to move this forward.

@thc202
Copy link
Member

thc202 commented May 30, 2025

If you want to move this forward generate the implementation instead of hand write it.

thc202
thc202 reviewed May 30, 2025
View reviewed changes
src/examples/client-spider-scan.py
Copy link
Member

@thc202 thc202 May 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is unnecessary.

Copy link
Author

@JohnnyIrvin JohnnyIrvin May 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why?

Copy link
Member

@thc202 thc202 May 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The existing examples already cover how the "scans" should be used.

Copy link
Author

@JohnnyIrvin JohnnyIrvin May 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Okay.

@thc202
Copy link
Member

thc202 commented May 30, 2025

The changelog should be updated.

@JohnnyIrvin
Copy link
Author

JohnnyIrvin commented May 30, 2025
edited
Loading

@thc202

Where is the documentation to generate it automatically?

Where should I place example usage?

@JohnnyIrvin
Copy link
Author

JohnnyIrvin commented May 30, 2025

The changelog should be updated.

What should it say?

@JohnnyIrvin JohnnyIrvin requested a review from thc202 May 30, 2025 16:13
@thc202
Copy link
Member

thc202 commented May 30, 2025

Read https://github.com/zaproxy/zap-api-python/blob/main/CONTRIBUTING.md and https://github.com/zaproxy/zap-api-python/blob/main/CHANGELOG.md

@thc202 thc202 removed their request for review May 30, 2025 16:19
@JohnnyIrvin
Copy link
Author

JohnnyIrvin commented May 30, 2025

@thc202

Unable to get the build system to build the plugin to generate the api.

Spent less time writing this simple addition then it takes to get automation tools to run.

Maybe.. Will come back later.

@JohnnyIrvin
docs(changelog): Adds clientSpider API.
4ce845d 
Signed-off-by: Johnathan P. Irvin <me@3xpl0173d.dev>
@JohnnyIrvin
Copy link
Author

JohnnyIrvin commented May 30, 2025
edited
Loading

The changelog should be updated.

Added change log per request.

@thc202
Copy link
Member

thc202 commented Dec 9, 2025

Superseded by #156 which has the APIs automatically generated.

@thc202 thc202 closed this Dec 9, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@thc202 thc202 thc202 left review comments

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@JohnnyIrvin @psiinon @kingthorin @thc202